Hi,
I am setting up a demo iPhone management server for my company, and to operate
with the Apple Push Notification Service, need to generate a CSR for a
certificate, to interoperate with Apple's servers. The instructions say that I
must use a Mac, and Apple's web page lists these exact instructions:
Launch Keychain Access
In the Applications folder on your Mac, open the Utilities folder and launch
Keychain Access.
* Within the Keychain Access drop down menu, select Keychain Access >
Certificate Assistant > Request a Certificate from a Certificate Authority
* In the Certificate Information window, enter the following information:
o In the User Email Address field, enter your email address
o In the Common Name field, create a name for your private key
(eg. John Doe Dev Key)
o In the Request is group, select the "Saved to disk" option
* Click Continue within Keychain Access to complete the CSR generating
process
It's obviously asking for just a subset of what would typically go into a CSR.
I tried generating several different CSR's with OpenSSL, containing various
information (and then converting the files to Mac line endings), but the
instructions seem to be right. Only the CSR I made on a friend's Mac was
accepted. I don't like mysteries, and don't being locked into one platform.
It's also possible that I just missed the right combination, and trying again
will make a CSR that works. (I also studied ASN.1 and DER a few years ago, and
can likely decode the Apple CSR to see what's inside.) But I'm currently
overworked, and wonder if anybody's investigated this before? Does anyone know
of step-by-step instructions to recreate an Apple Keychain CSR?
Thanks,
Todd
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager majord...@openssl.org
